AWS - Mód 5 - Modelos de Responsabilidades, AWS Shield & WAF, Inspector, Trusted Advisor, Cloud Trail, AWS Systems Manager Flashcards
Shared Responsibility Model
Security and compliance are shared responsibilities between AWS and the customer. This shared model can help reduce customer operational burdens as AWS operates, manages, and controls components from the host operating system to the virtualization layer, down to the physical security of the installations where the service operates.
AWS Responsibility: Cloud Security
AWS is responsible for securing the infrastructure that runs all services offered in the AWS Cloud. This infrastructure is made up of hardware, software, networks, and installations that run AWS Cloud Services.
Customer Responsibility: Cloud Security
Your responsibility will be determined by the AWS Cloud Services you select. This determines how many configuration operations you must perform as part of your security responsibilities. Source: AWS Documentation
AWS WAF
Web application firewall that allows you to monitor
HTTP and HTTPS requests are forwarded to an Amazon CloudFront distribution, an Amazon API Gateway RESTAPI, or an application load balancer.
AWS Shield
AWS provides the AWS Shield Standard
and AWS Shield Advanced for protection against DDoS attacks.
AWS Shield Standard
provides all AWS customers with protection against common and more frequent infrastructure attacks (layers 3 and 4), such as SYN/UDP floods, reflection attacks, and other attack types, providing high availability for applications on AWS.
AWS Shield Advanced
offers better protection against larger attacks
and more sophisticated applications running on protected Amazon EC2, Elastic Load Balancing (ELB), Amazon Cloud Front, AWS Global Accelerator, and Route 53 resources. AWS Shield Advanced protection provides always-on monitoring based on network traffic flow and active application monitoring to provide notifications of suspected incidents of DDo attacks in near real-time.
Amazon Inspector
security vulnerability assessment service that helps improve the security and compliance of AWS resources. Amazon Inspector automatically evaluates resources to detect vulnerabilities or deviations from best practices. As a result, it generates a detailed list of security findings, prioritized by severity level. Amazon Inspector includes a knowledge base of hundreds of rules, mapped to common security standards and vulnerability definitions, which are periodically updated by AWS security researchers.
AWS Trusted Advisor
online tool that provides real-time guidance to help you provision resources according to AWS best practices. Trusted Advisor checks help you optimize your AWS infrastructure, increase security and performance, reduce overall costs, and monitor service limits.
AWS Cloud Trail
is an AWS service that allows you to administer, maintain compliance, and perform operational and risk audits in your AWS account. Actions performed by a user, role, or AWS service are recorded as events in CloudTrail. Events include actions performed in the AWS Management Console, AWS Command Line Interface, and AWS SDKs and APIs.
A user needs an automated security assessment report that will identify unintended network access to Amazon EC2 instances and vulnerabilities on those instances. Which AWS service will provide this assessment report?
Amazon Inspector
Which service enables risk auditing by continuously monitoring and logging account activity, including user actions in the AWS Management Console and AWS SDKs?
AWS CloudTrail
https://aws.amazon.com/cloudtrail/
Which AWS Support plan provides a full set of AWS Trusted Advisor checks?
Enterprise and Business support.
https://aws.amazon.com/premiumsupport/plans/
A web application running on AWS has been spammed with malicious requests from a recurring set of IP addresses. Which AWS service can help secure the application and block the malicious traffic?
AWS WAF
Which service allows an organization to view operational data from multiple AWS services through a unified user interface and automate operational tasks?
AWS Systems Manager
https://aws.amazon.com/systems-manager/
